Stryker cyberattack

Escapees · 12-03-2026 04:29PM #1

I'm surprised there isn't a thread on this. It seems like they may not be able to return to business as usual for at least some weeks. Ironically, I came across this news clip below that had been put up around a week ago, warning of the very possibility of a wiper cyberattack.

https://youtu.be/7JcyJtewryE?is=GN0GjfJuFW4opvwN

igCorcaigh · 12-03-2026 05:22PM

I think their EU HQ is here in Cork?

I had to say, as I am from Cork, like. In case you didn't know.

Any personal data risk to the employees here in Cork?

Spear · 12-03-2026 05:33PM

https://www.boards.ie/discussion/comment/124307324#Comment_124307324

The details I've seen on a Linkedin article suggest personal info isn't at risk. What the attackers compromised was the provisioning and device management system, Intune, which was then used to remotely wipe all the companies devices at once.

igCorcaigh · 12-03-2026 05:41PM

https://www.boards.ie/discussion/comment/124307341#Comment_124307341

Feck… some attack. I wonder if other companies are at risk from the same Intune system… :o

Spear · 12-03-2026 05:42PM

https://www.boards.ie/discussion/comment/124307365#Comment_124307365

No idea at this point, there's nothing on how it was compromised, so no way to tell. If there was an exploit going round for it, most attackers would sit on it, and get more useful and sellable stuff like data out. A mass wipe like this is more in the category of attention seeking stunt, not the for profit acts of most.

magicbastarder · 12-03-2026 05:43PM

socially engineered access to stryker's intune tenant, or managed to get credentials in some other way? most likely explanation.

eastie17 · 12-03-2026 05:44PM

only if they have personal data on their work drvice, then it’s with the baddies now

igCorcaigh · 12-03-2026 06:14PM

What do the Iranians have against Stryker?

cml387 · 12-03-2026 06:21PM

I doubt Stryker was the target as such, but were compromised due to some vulnerability in their system.

Pauliedragon · 12-03-2026 06:21PM

https://www.boards.ie/discussion/comment/124307447#Comment_124307447

It's American and they have ties to Isreal. I guy I know works in the Cork one and he's been told to go into work tonight.

Patrick2010 · 12-03-2026 06:52PM

https://www.boards.ie/discussion/comment/124307447#Comment_124307447

Heard on newstalk this morning that the company got a big contract from the American government so that’s why they were targeted. Apparently there was no demand for money so that’s why they thought it was a terrorist attack

LambshankRedemption · 12-03-2026 08:27PM

https://www.boards.ie/discussion/2058435856/stryker-cyberattack

At no point in that video does it mention Stryker.

Ive been working in Cybersecurity and from time to use the Iranian Exploit database for my job. .

I dont get why this thread was created. WIll their be cyber attacks against the US? Well duh! Of course, but they are going on all the time any way.

_Kaiser_ · 12-03-2026 09:58PM

My main takeaway from the OP's video was it was a slow news hour - their "protestors gathering" was about 15/20 people standing around while the reporter tried to fill his few minutes.

Escapees · 12-03-2026 10:16PM

https://www.boards.ie/discussion/comment/124307775#Comment_124307775

Of course the video doesn't mention Stryker specifically - sure if they had that sort of intelligence, the attack would never have occurred... ??!

Anyway, the fact that it was a wiper type attack means 'some' data most certainly is irretrievably lost. I've seen IT backup systems in companies not working for months on end before any action is taken. That's the scary thing for me, given that many of Stryker's servers, and not just mobile devices and laptops, were apparently wiped.

Stryker and the general news feeds have been super quiet since the story first broke. My sense is it's a very big mess for Stryker and getting all their IT systems back on track is not going to happen any time soon. I'll be happy to be wrong on this though...

As for the Intune device management system that was used to wipe workers' devices, it seems crazy on the surface of it that such a system would allow erasing of ALL connected devices since this would almost never be a real world requirement. Even a limit of 10-50 devices per day seems more than reasonable. But hey, it's apparently a Microsoft product, so go figure.

opus · 13-03-2026 12:34PM

Where I work is going gung-ho moving to Intune at the moment, will be interesting to see if this makes any difference. Moral of the story I think is never have any management by your company on your personal device(s). I'm waiting on a company laptop at the moment for the occassional need to do something from home as no way I'm allow them access to my personal laptop.

The Nal · 13-03-2026 12:40PM

https://www.boards.ie/discussion/comment/124309025#Comment_124309025

InTune seperates work and personal data. So if your company was hacked the hackers could only see whats in your work profile.

opus · 13-03-2026 12:53PM

https://www.boards.ie/discussion/comment/124309035#Comment_124309035

Does the remote erase command differentiate between work & personal stuff on a laptop or phone 🤔

The Nal · 13-03-2026 01:36PM

https://www.boards.ie/discussion/comment/124309069#Comment_124309069

If its a personal device then its just the work profile stuff.

artanevilla · 13-03-2026 01:39PM

Have any HR files been compromised? Particularly those circa December 2019?

13-03-2026 01:41PM

https://www.boards.ie/discussion/comment/124309188#Comment_124309188

If it's configured correctly. Lots of places just go with the default setup. No way I'd trust any employer to have invested enough in IT to actually implement, monitor, and enforce proper practices.

You want me to use a device for work? You provide the device

The Nal · 13-03-2026 03:18PM

https://www.boards.ie/discussion/comment/124309199#Comment_124309199

Depends. I prefer it on my own phone. Turn off notifications after 5pm-9am and weekends. Dont like bringing two phones around.

Laptop sure, I'll have a company one.

_Kaiser_ · 13-03-2026 03:19PM

Absolutely - I occasionally have people ask if I'd not rather just have one phone to carry around, but I'll happily stick with 2 separate ones as I have for the last 20 years.

Never bought into this BYOD (Bring Your Own Device) idea - supposedly convenience for staff but really a cost saving exercise IMO and a nightmare for IT staff (what do you mean my 9 year old laptop with it's Celeron processor is the problem? It works fine for my email!)

The company can do what they want to on their device but mine is my own. Also, do I want my personal number getting shared with colleagues or customers? What about if I leave? Should I have to get a new number so they don't keep calling me? Or feel like I should read that email that came in at 7pm last night because it came on the same phone I was watching YouTube or reading on?

No thanks. Carrying a separate handset is a small price to pay.

Benedict XVI · 15-03-2026 10:37AM

https://www.boards.ie/discussion/comment/124307376#Comment_124307376

Someone had global admin rights and the password 26CLIAM

Stryker cyberattack

Comments